We are excited to announce the release of Customer Teams, a new Bugcrowd Platform feature that simplifies and streamlines how customers manage users and permissions across their Security Programs. 

This feature introduces a team-based approach to people resource management, making it easier for Organization Owners and Program Administrators to assign roles and manage access efficiently while maintaining security. Like Security Program Management, Customer Teams is another milestone in the broader initiative to enhance at-scale resource management at Bugcrowd.

Before Customer Teams, managing users could become a tedious process that required Organization Owners to manually assign roles to individual users for each Security Program. This process was time-consuming, prone to errors, and inefficient for large security organizations with multiple Security Programs. With Customer Teams, we’ve addressed these challenges by empowering organizations to manage their people resources using a team model.

What you can expect from Customer Teams

Bugcrowd now provides customers with a structured and efficient way to group users and manage their access across Security Programs. Here’s what you can expect from this powerful new feature:

Group users into teams: Organization Owners can now organize users into teams, assigning the entire team to a security program with a specific role. Every team member will share the same access and permissions for that security program. 

Flexible role assignment across Security Programs: Teams can be assigned access to multiple Security Programs, either with the same role or different roles for each Security Program. This flexibility doubles down on the customization introduced through Security Program Management.

Easy role and access management: Organization Owners can easily change a team’s role within a security program or remove their access entirely. When this happens, all team members are affected, ensuring quick, uniform updates to permissions.

Individual user management: For backward compatibility, individual users can still be assigned roles outside of a team. If a user needs a different role for a specific security program, Organization Owners can either:

    1. Remove the user from their current team and assign them to a team with the correct role.
    2. Assign the user directly to the Security Program with the appropriate role, bypassing the team structure.

Team creation and management by Organization Owners: Only Organization Owners have the authority to create and manage teams, assign members, and configure team roles and access to Security Programs. As a result, they must carefully consider team management, as team members will have access to all Security Programs and engagements the team is assigned to.

Seamless user onboarding: There are no changes to the onboarding of new users to your organization. Once a user is invited and provisioned as an Organization Member, Organization Owners can then assign them to teams.

Enhanced visibility: On the Organization/Members page, users can now see the list of teams they belong to, along with the security programs they have access to. This visibility helps Organization Owners and Program Administrators better manage user roles and responsibilities.

Team context: Each team has a short name and description to clarify its purpose and the roles it plays within your organization. Providing important context on team management and organizational structure.

Key benefits of Customer Teams

In addition to the features listed in the previous section, there are several key benefits users can gain from Customer Teams. 

Additive access: Users can be part of multiple teams, each with different roles, providing cumulative access across Security Programs. Where a user has multiple roles for a Security Program, they will receive the highest permission level assigned to them.

Backward compatibility: Organization Owners and Program Administrators retain the ability to assign individual users to a Security Program if they require a different role outside of their team assignments.

Improved workflow: The introduction of team-based access eliminates the repetitive task of manually managing user access for each Security Program, significantly reducing errors and increasing operational efficiency.

Getting started with Customer Teams

Customer Teams lays the foundation for even more powerful resource management capabilities. Stay tuned as we build on this with a more flexible, organized way to manage your security programs. 

To start taking advantage of Customer Teams now, navigate to the existing Security Program access management interface and select the ‘Teams’ option to start creating your first team. For more guidance, please refer to the product documentation or speak to your account management team. Your feedback is always appreciated.